1411677aeSAaron LI /* Copyright (c) 2015, bugyo
2411677aeSAaron LI * All rights reserved.
3411677aeSAaron LI *
4411677aeSAaron LI * Redistribution and use in source and binary forms, with or without
5411677aeSAaron LI * modification, are permitted provided that the following conditions are met:
6411677aeSAaron LI * 1. Redistributions of source code must retain the above copyright notice,
7411677aeSAaron LI * this list of conditions and the following disclaimer.
8411677aeSAaron LI * 2. Redistributions in binary form must reproduce the above copyright notice,
9411677aeSAaron LI * this list of conditions and the following disclaimer in the documentation
10411677aeSAaron LI * and/or other materials provided with the distribution.
11411677aeSAaron LI *
12411677aeSAaron LI * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
13411677aeSAaron LI * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
14411677aeSAaron LI * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
15411677aeSAaron LI * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
16411677aeSAaron LI * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
17411677aeSAaron LI * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
18411677aeSAaron LI * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
19411677aeSAaron LI * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
20411677aeSAaron LI * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
21411677aeSAaron LI * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
22411677aeSAaron LI */
23411677aeSAaron LI
24411677aeSAaron LI /* \summary: Network Service Header (NSH) printer */
25411677aeSAaron LI
26*ed775ee7SAntonio Huete Jimenez /* specification: RFC 8300 */
27411677aeSAaron LI
28411677aeSAaron LI #ifdef HAVE_CONFIG_H
29*ed775ee7SAntonio Huete Jimenez #include <config.h>
30411677aeSAaron LI #endif
31411677aeSAaron LI
32*ed775ee7SAntonio Huete Jimenez #include "netdissect-stdinc.h"
33411677aeSAaron LI
34*ed775ee7SAntonio Huete Jimenez #define ND_LONGJMP_FROM_TCHECK
35411677aeSAaron LI #include "netdissect.h"
36411677aeSAaron LI #include "extract.h"
37411677aeSAaron LI
38411677aeSAaron LI static const struct tok nsh_flags [] = {
39*ed775ee7SAntonio Huete Jimenez { 0x2, "O" },
40411677aeSAaron LI { 0, NULL }
41411677aeSAaron LI };
42411677aeSAaron LI
43*ed775ee7SAntonio Huete Jimenez /*
44*ed775ee7SAntonio Huete Jimenez * 0 1 2 3
45*ed775ee7SAntonio Huete Jimenez * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
46*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
47*ed775ee7SAntonio Huete Jimenez * |Ver|O|U| TTL | Length |U|U|U|U|MD Type| Next Protocol |
48*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
49*ed775ee7SAntonio Huete Jimenez */
50411677aeSAaron LI #define NSH_BASE_HDR_LEN 4
51*ed775ee7SAntonio Huete Jimenez #define NSH_VER(x) (((x) & 0xc0000000) >> 30)
52*ed775ee7SAntonio Huete Jimenez #define NSH_FLAGS(x) (((x) & 0x30000000) >> 28)
53*ed775ee7SAntonio Huete Jimenez #define NSH_TTL(x) (((x) & 0x0fc00000) >> 22)
54*ed775ee7SAntonio Huete Jimenez #define NSH_LENGTH(x) (((x) & 0x003f0000) >> 16)
55*ed775ee7SAntonio Huete Jimenez #define NSH_MD_TYPE(x) (((x) & 0x00000f00) >> 8)
56*ed775ee7SAntonio Huete Jimenez #define NSH_NEXT_PROT(x) (((x) & 0x000000ff) >> 0)
57*ed775ee7SAntonio Huete Jimenez
58411677aeSAaron LI #define NSH_SERVICE_PATH_HDR_LEN 4
59411677aeSAaron LI #define NSH_HDR_WORD_SIZE 4U
60411677aeSAaron LI
61*ed775ee7SAntonio Huete Jimenez #define MD_RSV 0x00
62*ed775ee7SAntonio Huete Jimenez #define MD_TYPE1 0x01
63*ed775ee7SAntonio Huete Jimenez #define MD_TYPE2 0x02
64*ed775ee7SAntonio Huete Jimenez #define MD_EXP 0x0F
65*ed775ee7SAntonio Huete Jimenez static const struct tok md_str[] = {
66*ed775ee7SAntonio Huete Jimenez { MD_RSV, "reserved" },
67*ed775ee7SAntonio Huete Jimenez { MD_TYPE1, "1" },
68*ed775ee7SAntonio Huete Jimenez { MD_TYPE2, "2" },
69*ed775ee7SAntonio Huete Jimenez { MD_EXP, "experimental" },
70*ed775ee7SAntonio Huete Jimenez { 0, NULL }
71*ed775ee7SAntonio Huete Jimenez };
72*ed775ee7SAntonio Huete Jimenez
73*ed775ee7SAntonio Huete Jimenez #define NP_IPV4 0x01
74*ed775ee7SAntonio Huete Jimenez #define NP_IPV6 0x02
75*ed775ee7SAntonio Huete Jimenez #define NP_ETH 0x03
76*ed775ee7SAntonio Huete Jimenez #define NP_NSH 0x04
77*ed775ee7SAntonio Huete Jimenez #define NP_MPLS 0x05
78*ed775ee7SAntonio Huete Jimenez #define NP_EXP1 0xFE
79*ed775ee7SAntonio Huete Jimenez #define NP_EXP2 0xFF
80*ed775ee7SAntonio Huete Jimenez static const struct tok np_str[] = {
81*ed775ee7SAntonio Huete Jimenez { NP_IPV4, "IPv4" },
82*ed775ee7SAntonio Huete Jimenez { NP_IPV6, "IPv6" },
83*ed775ee7SAntonio Huete Jimenez { NP_ETH, "Ethernet" },
84*ed775ee7SAntonio Huete Jimenez { NP_NSH, "NSH" },
85*ed775ee7SAntonio Huete Jimenez { NP_MPLS, "MPLS" },
86*ed775ee7SAntonio Huete Jimenez { NP_EXP1, "Experiment 1" },
87*ed775ee7SAntonio Huete Jimenez { NP_EXP2, "Experiment 2" },
88*ed775ee7SAntonio Huete Jimenez { 0, NULL }
89*ed775ee7SAntonio Huete Jimenez };
90*ed775ee7SAntonio Huete Jimenez
91411677aeSAaron LI void
nsh_print(netdissect_options * ndo,const u_char * bp,u_int len)92411677aeSAaron LI nsh_print(netdissect_options *ndo, const u_char *bp, u_int len)
93411677aeSAaron LI {
94*ed775ee7SAntonio Huete Jimenez uint32_t basehdr;
95*ed775ee7SAntonio Huete Jimenez u_int ver, length, md_type;
96411677aeSAaron LI uint8_t next_protocol;
97*ed775ee7SAntonio Huete Jimenez u_char past_headers = 0;
98411677aeSAaron LI u_int next_len;
99411677aeSAaron LI
100*ed775ee7SAntonio Huete Jimenez ndo->ndo_protocol = "nsh";
101*ed775ee7SAntonio Huete Jimenez /*
102*ed775ee7SAntonio Huete Jimenez * 0 1 2 3
103*ed775ee7SAntonio Huete Jimenez * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
104*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
105*ed775ee7SAntonio Huete Jimenez * | Base Header |
106*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
107*ed775ee7SAntonio Huete Jimenez * | Service Path Header |
108*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
109*ed775ee7SAntonio Huete Jimenez * | |
110*ed775ee7SAntonio Huete Jimenez * ~ Context Header(s) ~
111*ed775ee7SAntonio Huete Jimenez * | |
112*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
113*ed775ee7SAntonio Huete Jimenez */
114*ed775ee7SAntonio Huete Jimenez
115411677aeSAaron LI /* print Base Header and Service Path Header */
116*ed775ee7SAntonio Huete Jimenez if (len < NSH_BASE_HDR_LEN + NSH_SERVICE_PATH_HDR_LEN) {
117*ed775ee7SAntonio Huete Jimenez ND_PRINT(" (packet length %u < %u)",
118*ed775ee7SAntonio Huete Jimenez len, NSH_BASE_HDR_LEN + NSH_SERVICE_PATH_HDR_LEN);
119*ed775ee7SAntonio Huete Jimenez goto invalid;
120411677aeSAaron LI }
121*ed775ee7SAntonio Huete Jimenez
122*ed775ee7SAntonio Huete Jimenez basehdr = GET_BE_U_4(bp);
123*ed775ee7SAntonio Huete Jimenez bp += 4;
124*ed775ee7SAntonio Huete Jimenez ver = NSH_VER(basehdr);
125*ed775ee7SAntonio Huete Jimenez length = NSH_LENGTH(basehdr);
126*ed775ee7SAntonio Huete Jimenez md_type = NSH_MD_TYPE(basehdr);
127*ed775ee7SAntonio Huete Jimenez next_protocol = NSH_NEXT_PROT(basehdr);
128*ed775ee7SAntonio Huete Jimenez
129*ed775ee7SAntonio Huete Jimenez ND_PRINT("NSH, ");
130*ed775ee7SAntonio Huete Jimenez if (ndo->ndo_vflag > 1) {
131*ed775ee7SAntonio Huete Jimenez ND_PRINT("ver %u, ", ver);
132*ed775ee7SAntonio Huete Jimenez }
133*ed775ee7SAntonio Huete Jimenez if (ver != 0)
134*ed775ee7SAntonio Huete Jimenez return;
135*ed775ee7SAntonio Huete Jimenez ND_PRINT("flags [%s], ",
136*ed775ee7SAntonio Huete Jimenez bittok2str_nosep(nsh_flags, "none", NSH_FLAGS(basehdr)));
137411677aeSAaron LI if (ndo->ndo_vflag > 2) {
138*ed775ee7SAntonio Huete Jimenez ND_PRINT("TTL %u, ", NSH_TTL(basehdr));
139*ed775ee7SAntonio Huete Jimenez ND_PRINT("length %u, ", length);
140*ed775ee7SAntonio Huete Jimenez ND_PRINT("md type %s, ", tok2str(md_str, "unknown (0x%02x)", md_type));
141411677aeSAaron LI }
142411677aeSAaron LI if (ndo->ndo_vflag > 1) {
143*ed775ee7SAntonio Huete Jimenez ND_PRINT("next-protocol %s, ",
144*ed775ee7SAntonio Huete Jimenez tok2str(np_str, "unknown (0x%02x)", next_protocol));
145411677aeSAaron LI }
146411677aeSAaron LI
147411677aeSAaron LI /* Make sure we have all the headers */
148*ed775ee7SAntonio Huete Jimenez if (len < length * NSH_HDR_WORD_SIZE) {
149*ed775ee7SAntonio Huete Jimenez ND_PRINT(" (too many headers for packet length %u)", len);
150*ed775ee7SAntonio Huete Jimenez goto invalid;
151*ed775ee7SAntonio Huete Jimenez }
152411677aeSAaron LI
153*ed775ee7SAntonio Huete Jimenez /*
154*ed775ee7SAntonio Huete Jimenez * 0 1 2 3
155*ed775ee7SAntonio Huete Jimenez * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
156*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
157*ed775ee7SAntonio Huete Jimenez * | Service Path Identifier (SPI) | Service Index |
158*ed775ee7SAntonio Huete Jimenez * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
159*ed775ee7SAntonio Huete Jimenez *
160*ed775ee7SAntonio Huete Jimenez */
161*ed775ee7SAntonio Huete Jimenez ND_PRINT("service-path-id 0x%06x, ", GET_BE_U_3(bp));
162*ed775ee7SAntonio Huete Jimenez bp += 3;
163*ed775ee7SAntonio Huete Jimenez ND_PRINT("service-index 0x%x", GET_U_1(bp));
164*ed775ee7SAntonio Huete Jimenez bp += 1;
165411677aeSAaron LI
166411677aeSAaron LI /*
167411677aeSAaron LI * length includes the lengths of the Base and Service Path headers.
168411677aeSAaron LI * That means it must be at least 2.
169411677aeSAaron LI */
170*ed775ee7SAntonio Huete Jimenez if (length < 2) {
171*ed775ee7SAntonio Huete Jimenez ND_PRINT(" (less than two headers)");
172*ed775ee7SAntonio Huete Jimenez goto invalid;
173*ed775ee7SAntonio Huete Jimenez }
174411677aeSAaron LI
175411677aeSAaron LI /*
176411677aeSAaron LI * Print, or skip, the Context Headers.
177411677aeSAaron LI * (length - 2) is the length of those headers.
178411677aeSAaron LI */
179411677aeSAaron LI if (ndo->ndo_vflag > 2) {
180*ed775ee7SAntonio Huete Jimenez u_int n;
181*ed775ee7SAntonio Huete Jimenez
182*ed775ee7SAntonio Huete Jimenez if (md_type == MD_TYPE1) {
183*ed775ee7SAntonio Huete Jimenez if (length != 6) {
184*ed775ee7SAntonio Huete Jimenez ND_PRINT(" (invalid length for the MD type)");
185*ed775ee7SAntonio Huete Jimenez goto invalid;
186*ed775ee7SAntonio Huete Jimenez }
187411677aeSAaron LI for (n = 0; n < length - 2; n++) {
188*ed775ee7SAntonio Huete Jimenez ND_PRINT("\n Context[%02u]: 0x%08x", n, GET_BE_U_4(bp));
189411677aeSAaron LI bp += NSH_HDR_WORD_SIZE;
190411677aeSAaron LI }
191*ed775ee7SAntonio Huete Jimenez past_headers = 1;
192411677aeSAaron LI }
193*ed775ee7SAntonio Huete Jimenez else if (md_type == MD_TYPE2) {
194411677aeSAaron LI n = 0;
195411677aeSAaron LI while (n < length - 2) {
196*ed775ee7SAntonio Huete Jimenez uint16_t tlv_class;
197*ed775ee7SAntonio Huete Jimenez uint8_t tlv_type, tlv_len, tlv_len_padded;
198411677aeSAaron LI
199*ed775ee7SAntonio Huete Jimenez tlv_class = GET_BE_U_2(bp);
200*ed775ee7SAntonio Huete Jimenez bp += 2;
201*ed775ee7SAntonio Huete Jimenez tlv_type = GET_U_1(bp);
202*ed775ee7SAntonio Huete Jimenez bp += 1;
203*ed775ee7SAntonio Huete Jimenez tlv_len = GET_U_1(bp) & 0x7f;
204*ed775ee7SAntonio Huete Jimenez bp += 1;
205*ed775ee7SAntonio Huete Jimenez tlv_len_padded = roundup2(tlv_len, NSH_HDR_WORD_SIZE);
206*ed775ee7SAntonio Huete Jimenez
207*ed775ee7SAntonio Huete Jimenez ND_PRINT("\n TLV Class %u, Type %u, Len %u",
208*ed775ee7SAntonio Huete Jimenez tlv_class, tlv_type, tlv_len);
209411677aeSAaron LI
210411677aeSAaron LI n += 1;
211411677aeSAaron LI
212*ed775ee7SAntonio Huete Jimenez if (length - 2 < n + tlv_len_padded / NSH_HDR_WORD_SIZE) {
213*ed775ee7SAntonio Huete Jimenez ND_PRINT(" (length too big)");
214*ed775ee7SAntonio Huete Jimenez goto invalid;
215411677aeSAaron LI }
216411677aeSAaron LI
217*ed775ee7SAntonio Huete Jimenez if (tlv_len) {
218*ed775ee7SAntonio Huete Jimenez const char *sep = "0x";
219*ed775ee7SAntonio Huete Jimenez u_int vn;
220*ed775ee7SAntonio Huete Jimenez
221*ed775ee7SAntonio Huete Jimenez ND_PRINT("\n Value: ");
222411677aeSAaron LI for (vn = 0; vn < tlv_len; vn++) {
223*ed775ee7SAntonio Huete Jimenez ND_PRINT("%s%02x", sep, GET_U_1(bp));
224*ed775ee7SAntonio Huete Jimenez bp += 1;
225*ed775ee7SAntonio Huete Jimenez sep = ":";
226411677aeSAaron LI }
227*ed775ee7SAntonio Huete Jimenez /* Cover any TLV padding. */
228*ed775ee7SAntonio Huete Jimenez ND_TCHECK_LEN(bp, tlv_len_padded - tlv_len);
229*ed775ee7SAntonio Huete Jimenez bp += tlv_len_padded - tlv_len;
230*ed775ee7SAntonio Huete Jimenez n += tlv_len_padded / NSH_HDR_WORD_SIZE;
231411677aeSAaron LI }
232411677aeSAaron LI }
233*ed775ee7SAntonio Huete Jimenez past_headers = 1;
234411677aeSAaron LI }
235411677aeSAaron LI }
236*ed775ee7SAntonio Huete Jimenez if (! past_headers) {
237*ed775ee7SAntonio Huete Jimenez ND_TCHECK_LEN(bp, (length - 2) * NSH_HDR_WORD_SIZE);
238411677aeSAaron LI bp += (length - 2) * NSH_HDR_WORD_SIZE;
239411677aeSAaron LI }
240*ed775ee7SAntonio Huete Jimenez ND_PRINT(ndo->ndo_vflag ? "\n " : ": ");
241411677aeSAaron LI
242411677aeSAaron LI /* print Next Protocol */
243411677aeSAaron LI next_len = len - length * NSH_HDR_WORD_SIZE;
244411677aeSAaron LI switch (next_protocol) {
245*ed775ee7SAntonio Huete Jimenez case NP_IPV4:
246411677aeSAaron LI ip_print(ndo, bp, next_len);
247411677aeSAaron LI break;
248*ed775ee7SAntonio Huete Jimenez case NP_IPV6:
249411677aeSAaron LI ip6_print(ndo, bp, next_len);
250411677aeSAaron LI break;
251*ed775ee7SAntonio Huete Jimenez case NP_ETH:
252*ed775ee7SAntonio Huete Jimenez ether_print(ndo, bp, next_len, ND_BYTES_AVAILABLE_AFTER(bp), NULL, NULL);
253411677aeSAaron LI break;
254411677aeSAaron LI default:
255*ed775ee7SAntonio Huete Jimenez ND_PRINT("ERROR: unknown-next-protocol");
256411677aeSAaron LI return;
257411677aeSAaron LI }
258411677aeSAaron LI
259411677aeSAaron LI return;
260411677aeSAaron LI
261*ed775ee7SAntonio Huete Jimenez invalid:
262*ed775ee7SAntonio Huete Jimenez nd_print_invalid(ndo);
263411677aeSAaron LI }
264411677aeSAaron LI
265